AWS DirectConnect Redundancy: Options for Ensuring High Availability and Failover

Setup Redundancy for AWS DirectConnect Connection

Prev Question Next Question

Question

A company has setup a DirectConnect connection between their on-premise location and their AWS VPC.

They want to setup redundancy incase the DirectConnect connection fails.

What can they do in this regard? Choose all the options that apply.

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

Answer - A and B.

This is clearly mentioned in the AWS FAQ's.

If you have established a second AWS Direct Connect connection, traffic will failover to the second link automatically.

We recommend enabling Bidirectional Forwarding Detection (BFD) when configuring your connections to ensure fast detection and failover.

If you have configured a back-up IPsec VPN connection instead, all VPC traffic will failover to the VPN connection automatically.

Traffic to/from public resources such as Amazon S3 will be routed over the Internet.

If you do not have a backup AWS Direct Connect link or a IPsec VPN link, then Amazon VPC traffic will be dropped in the event of a failure.

Traffic to/from public resources will be routed over the Internet.

For more information on DirectConnect FAQ's , please visit the below URL:

https://aws.amazon.com/directconnect/faqs/

A company that has set up a DirectConnect connection between their on-premise location and their AWS VPC can set up redundancy in case the DirectConnect connection fails. The following options are available:

A. Setup another DirectConnect connection: The company can set up a second DirectConnect connection to their VPC in another AWS region or from another service provider. This provides redundancy in case one of the DirectConnect connections fails.

B. Setup an IPSec VPN Connection: The company can set up an IPSec VPN connection as a backup in case the DirectConnect connection fails. This provides a secure connection over the public internet.

C. Setup S3 connection: S3 is an object storage service provided by AWS. It is not related to setting up a DirectConnect connection or providing redundancy in case the DirectConnect connection fails.

D. Setup a connection via EC2 instances: The company can set up an EC2 instance in their VPC and configure it to act as a VPN gateway. This provides a backup connection in case the DirectConnect connection fails.

In summary, the company can set up redundancy for their DirectConnect connection by setting up another DirectConnect connection or an IPSec VPN connection, or by setting up a backup connection via EC2 instances. The option of setting up an S3 connection is not relevant to this scenario.